{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,26]],"date-time":"2026-03-26T15:57:09Z","timestamp":1774540629181,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":30,"publisher":"ACM","license":[{"start":{"date-parts":[[2021,11,12]],"date-time":"2021-11-12T00:00:00Z","timestamp":1636675200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["(Grant No. 61802394, U1836209, 62032010)"],"award-info":[{"award-number":["(Grant No. 61802394, U1836209, 62032010)"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100012166","name":"National Key Research and Development Program of China","doi-asserted-by":"publisher","award":["(2020YFB1005704)"],"award-info":[{"award-number":["(2020YFB1005704)"]}],"id":[{"id":"10.13039\/501100012166","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Strategic Priority Research Program of the CAS","award":["(XDC02040100)"],"award-info":[{"award-number":["(XDC02040100)"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2021,11,12]]},"DOI":"10.1145\/3460120.3484823","type":"proceedings-article","created":{"date-parts":[[2021,11,13]],"date-time":"2021-11-13T12:05:33Z","timestamp":1636805133000},"page":"2229-2242","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":25,"title":["SoFi: Reflection-Augmented Fuzzing for JavaScript Engines"],"prefix":"10.1145","author":[{"given":"Xiaoyu","family":"He","sequence":"first","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]},{"given":"Xiaofei","family":"Xie","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore, Singapore"}]},{"given":"Yuekang","family":"Li","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore, Singapore"}]},{"given":"Jianwen","family":"Sun","sequence":"additional","affiliation":[{"name":"Huawei Technologies, Shenzhen, China"}]},{"given":"Feng","family":"Li","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]},{"given":"Wei","family":"Zou","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]},{"given":"Yang","family":"Liu","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore, Singapore"}]},{"given":"Lei","family":"Yu","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]},{"given":"Jianhua","family":"Zhou","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]},{"given":"Wenchang","family":"Shi","sequence":"additional","affiliation":[{"name":"Renmin University of China, Beijing, China"}]},{"given":"Wei","family":"Huo","sequence":"additional","affiliation":[{"name":"Institute of Information Engineering, Chinese Academy of Sciences & University of Chinese Academy of Sciences, Beijing, China"}]}],"member":"320","published-online":{"date-parts":[[2021,11,13]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"american fuzzy lop. https:\/\/lcamtuf.coredump.cx\/afl\/."},{"key":"e_1_3_2_1_2_1","unstructured":"benjamn\/ast-types: Esprima-compatible implementation of the mozilla js parser api. https:\/\/github.com\/benjamn\/ast-types."},{"key":"e_1_3_2_1_3_1","unstructured":"cesanta\/mjs: Embedded javascript engine for c\/c"},{"key":"e_1_3_2_1_4_1","unstructured":". https:\/\/github.com\/cesanta\/mjs."},{"key":"e_1_3_2_1_5_1","unstructured":"Esprima. https:\/\/esprima.org\/."},{"key":"e_1_3_2_1_6_1","unstructured":"Espruino up to 1.97 jswrap_graphics.c memory corruption. https:\/\/vuldb.com\/?id.118465."},{"key":"e_1_3_2_1_7_1","unstructured":"estools\/escodegen: Ecmascript code generator. https:\/\/github.com\/estools\/escodegen."},{"key":"e_1_3_2_1_8_1","unstructured":"funfuzz\/src\/funfuzz\/js\/jsfunfuzz at master \u00b7 mozillasecurity\/funfuzz. https:\/\/github.com\/MozillaSecurity\/funfuzz\/tree\/master\/src\/funfuzz\/js\/jsfunfuzz."},{"key":"e_1_3_2_1_9_1","unstructured":"googleprojectzero\/domato: Dom fuzzer. https:\/\/github.com\/googleprojectzero\/domato."},{"key":"e_1_3_2_1_10_1","unstructured":"Javascript - wikipedia. https:\/\/en.wikipedia.org\/wiki\/JavaScript#Dynamic."},{"key":"e_1_3_2_1_11_1","unstructured":"Javascriptcore | apple developer documentation. https:\/\/developer.apple.com\/documentation\/javascriptcore."},{"key":"e_1_3_2_1_12_1","unstructured":"Jerryscript 1.0 lit\/lit-char-helpers.c lit_read_code_unit_from_hex memory corruption. https:\/\/vuldb.com\/?id.113964."},{"key":"e_1_3_2_1_13_1","unstructured":"jerryscript-project\/jerryscript: Ultra-lightweight javascript engine for the internet of things. https:\/\/github.com\/jerryscript-project\/jerryscript."},{"key":"e_1_3_2_1_14_1","unstructured":"Mujs. https:\/\/mujs.com\/."},{"key":"e_1_3_2_1_15_1","unstructured":"Nvd - cve-2019--1010176. https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2019--1010176."},{"key":"e_1_3_2_1_16_1","unstructured":"Openrce\/sulley: A pure-python fully automated and unattended fuzzing framework. https:\/\/github.com\/OpenRCE\/sulley."},{"key":"e_1_3_2_1_17_1","unstructured":"Peach fuzzer: Discover unknown vulnerabilities. https:\/\/www.peach.tech\/."},{"key":"e_1_3_2_1_18_1","unstructured":"Reflect - javascript | mdn. https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Reference\/Global_Objects\/Reflect."},{"key":"e_1_3_2_1_19_1","unstructured":"tc39\/test262: Official ecmascript conformance test suite. https:\/\/github.com\/tc39\/test262."},{"key":"e_1_3_2_1_20_1","unstructured":"Xs7 @ tc-39. https:\/\/www.moddable.com\/XS7-TC-39.php."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23412"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2009.5070546"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2019.23263"},{"key":"e_1_3_2_1_24_1","first-page":"445","volume":"1","author":"Holler Christian","unstructured":"Christian Holler, Kim Herzig, and Andreas Zeller. Fuzzcodealchemisting with code fragments. In Presented as part of the 21st $$USENIX$$ Security Symposium ($$USENIX$$ Security 12), pages 445--458, 2012.","journal-title":"Security"},{"key":"e_1_3_2_1_25_1","first-page":"989","volume-title":"26th $$USENIX$$ Security Symposium ($$USENIX$$ Security 17)","author":"Jia Xiangkun","year":"2017","unstructured":"Xiangkun Jia, Chao Zhang, Purui Su, Yi Yang, Huafeng Huang, and Dengguo Feng. Towards efficient heap overflow discovery. In 26th $$USENIX$$ Security Symposium ($$USENIX$$ Security 17), pages 989--1006, 2017."},{"key":"e_1_3_2_1_26_1","volume-title":"Speech and language processing (draft). october","author":"Jurafsky Daniel","year":"2019","unstructured":"Daniel Jurafsky and James H Martin. Speech and language processing (draft). october 2019. URL https:\/\/web. stanford. edu\/ jurafsky\/slp3, 2019."},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23404"},{"key":"e_1_3_2_1_28_1","volume-title":"Analysis of javascript programs: Challenges and research trends. ACM Computing Surveys (CSUR), 50(4):1--34","author":"Sun Kwangwon","year":"2017","unstructured":"Kwangwon Sun and Sukyoung Ryu. Analysis of javascript programs: Challenges and research trends. ACM Computing Surveys (CSUR), 50(4):1--34, 2017."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-45744-4_29"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00081"}],"event":{"name":"CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security","location":"Virtual Event Republic of Korea","acronym":"CCS '21","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3460120.3484823","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3460120.3484823","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T20:49:18Z","timestamp":1763498958000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3460120.3484823"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,11,12]]},"references-count":30,"alternative-id":["10.1145\/3460120.3484823","10.1145\/3460120"],"URL":"https:\/\/doi.org\/10.1145\/3460120.3484823","relation":{},"subject":[],"published":{"date-parts":[[2021,11,12]]},"assertion":[{"value":"2021-11-13","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}